The primary goal of a security infrastructure is the protection of confidentiality, integrity and availability (CIA) if the assets of a company.

Confidentiality

The goal is to prevent or minimize unauthorized access to data.

Data must be protected in every phase: While in storage, in process and in transit.

It want to grant access for authorized users to interact or see the data, while preventing unauthorized users.

Examples of security controls to provide confidentiality:

• Encryption
• Secure passwords
• Access controls

Integrity

The goal is to protect the reliability and the correctness of data.

Integrity prevents unauthorized alterations of data. To maintain it, objects must only be intentionally modified by authorized subjects. Alterations should not occur when unintended.

Information that has data integrity can be trusted to be complete, consistent and accurate.

System integrity means that a system will work as intended.

Examples of security controls to provide integrity:

• Hash verification
• Digital signatures
• Intrusion detection systems (IDS)

Availability

The goal is to grant subject timely and uninterrupted access to objects